funny – Page 288 – Tech Today w/ Ken May

Employee Outsourced Programming Job To China, Spent Days Websurfing

New submitter kju writes “The security blog of Verizon has the story of an investigation into unauthorized VPN access from China which led to unexpected findings. Investigators found invoices from a Chinese contractor who had actually done the work of the employee, who spent the day watching cat videos and visiting eBay and Facebook. The man had Fedexed his RSA token to the contractor and paid only about 1/5th of his income for the contracting service. Because he provided clean code on time, he was noted in his performance reviews to be the best programmer in the building. According to the article, the man had similar scams running with other companies.” Read more of this story at Slashdot.

View original post here:
Employee Outsourced Programming Job To China, Spent Days Websurfing

Remote Linksys 0-Day Root Exploit Uncovered

Orome1 writes “DefenseCode researchers have uncovered a remote root access vulnerability in the default installation of Linksys routers. They contacted Cisco and shared a detailed vulnerability description along with the PoC exploit for the vulnerability. Cisco claimed that the vulnerability was already fixed in the latest firmware release, which turned out to be incorrect. The latest Linksys firmware (4.30.14) and all previous versions are still vulnerable.” Read more of this story at Slashdot.

“Red October” Espionage Malware Campaign Uncovered

L3sPau1 writes “For five years, it hid in the weeds of networks used by Eastern European diplomats, government employees and scientific research organizations, stealing data and infecting more machines in an espionage campaign rivaling Flame and others of its ilk. The campaign, called Rocra or Red October by researchers at Kaspersky Lab, focused not only on workstations, but mobile devices and networking gear to gain a foothold inside strategic organizations. Once inside, attackers pivoted internally and stole everything from files on desktops, smartphones and FTP servers, to email databases using exploits developed in Chinese and Russian malware, Kaspersky researchers said.” Read more of this story at Slashdot.

Taken from:
“Red October” Espionage Malware Campaign Uncovered

Telepresence Robot Rundown

DeviceGuru writes “A handful of innovative high-tech startups have recently emerged to create a new market: remote telepresence robots. With one of these robotic Avatars, you can wander around in the remote environment, chatting with coworkers and managers, attending meetings, and solving problems encountered through those interactions. InformationWeek’s Telepresence Robot Smackdown compares five such bots — the MantaroBot TeleMe, VGo Communications VGo, Anybots QB, Suitable Technologies Beam, and Revolve Robotics Kubi — and includes short videos demonstrating each. As the article concludes, ‘bear in mind that what we’re witnessing here is the emergence of a new industry; and if Moore’s Law applies here as it does to so many IT spheres, it won’t be long before these gadgets are inexpensive, commonplace, and far more flexible and intelligent.” Read more of this story at Slashdot.

Alleged ZeuS Botmaster Arrested For Stealing $100M From US Banks

Trailrunner7 writes “A 24-year-old Algerian man remains in a Thai jail awaiting extradition to the United States, where he is suspected of masterminding more than $100 million in global bank heists using the ZeuS and SpyEye Trojans. Malaysian authorities believe they’ve apprehended the hacker Hamza Bendelladj, who they say has been jetsetting around the world using millions of dollars stolen online from various banks. He was arrested at a Bangkok airport en route from Malaysia to Egypt. The hacker had developed a considerable reputation as a major operator of ZeuS-powered botnets and bragged about his exploits” Read more of this story at Slashdot.

Thousands of SCADA Devices Discovered On the Open Internet

Trailrunner7 writes with news of the continuing poor state of security for industrial control systems. From the article: “Never underestimate what you can do with a healthy list of advanced operator search terms and a beer budget. That’s mostly what comprises the arsenal of two critical infrastructure protection specialists who have spent close to nine months trying to paint a picture of the number of Internet-facing devices linked to critical infrastructure in the United States. It’s not a pretty picture. The duo … have with some help from the Department of Homeland Security (PDF) pared down an initial list of 500,000 devices to 7,200, many of which contain online login interfaces with little more than a default password standing between an attacker and potential havoc. DHS has done outreach to the affected asset owners, yet these tides turn slowly and progress has been slow in remedying many of those weaknesses. …The pair found not only devices used for critical infrastructure such as energy, water and other utilities, but also SCADA devices for HVAC systems, building automation control systems, large mining trucks, traffic control systems, red-light cameras and even crematoriums.” Read more of this story at Slashdot.

More:
Thousands of SCADA Devices Discovered On the Open Internet

Drug Allows Deafened Mice to Regrow Inner Ear Hair

sciencehabit writes “All you graying, half-deaf Def Leppard fans, listen up. A drug applied to the ears of mice deafened by noise can restore some hearing in the animals. By blocking a key protein, the drug allows sound-sensing cells that are damaged by noise to regrow. The treatment isn’t anywhere near ready for use in humans, but the advance at least raises the prospect of restoring hearing to some deafened people.” Read more of this story at Slashdot.

See the article here:
Drug Allows Deafened Mice to Regrow Inner Ear Hair

Fireflies Bring Us Brighter LEDs

Zothecula writes “Fireflies have helped an international team of scientists get over 50 percent more light out of existing LED bulbs. It was discovered that in the Photuris genus of firefly, scales in the insect’s exoskeleton possess optical qualities that boost the amount of bioluminescence that can shine through. Those same qualities were found to dramatically increase the light output of an LED bulb.” Read more of this story at Slashdot.

Originally posted here:
Fireflies Bring Us Brighter LEDs

Hands On With Virtual Reality’s Greatest Hope

adeelarshad82 writes “Oculus VR Rift is a one of the seventeen kickstarter projects to raise more than a million dollars in 2012 and a recently published hands-on shows exactly why it was so successful. Using Oculus VR Rift with the upcoming Infinity Blade and a modified version of Unreal Tournament 3, the analyst found that the 3D effect and head tracking provided a great sense of immersion. At one point while playing Infinity Blade, the analyst describes walking around the guards and watching their swords shift as he stepped, seeming like they were inches from cutting him. While he felt that the demo was impressive, he found that the software limitations made the whole experience a bit unrealistic. Needless to say that Oculus Rift is a long way from hitting stores but Oculus VR is getting ready to ship developer kits.” Read more of this story at Slashdot.

See the original post:
Hands On With Virtual Reality’s Greatest Hope

Loss of a Single Laptop Leads to $50k Fine Against Idaho Hospice

netbuzz writes “Losing a single laptop containing sensitive personal information about 441 patients will cost a non-profit Idaho hospice center $50,000, marking the first such HIPAA-related penalty involving fewer than 500 data-breach victims. Yes, the data was not encrypted. ‘This action sends a strong message to the health care industry that, regardless of size, covered entities must take action and will be held accountable for safeguarding their patients’ health information,’ says the Department of Health and Human Services.” Read more of this story at Slashdot.

Read the original:
Loss of a Single Laptop Leads to $50k Fine Against Idaho Hospice